I have a network connecting to the internet
through a Linux box that masquerades local
machines. It is further hidden by a NAT.
Approximately like this:
internet --> NAT --> Linux box --> internal network
(10.21.xx.xx) (192.168.xx.xx)
It works fine, except for a recent change. I need
to assign some addresses through DHCP. When I try
it, computers (running Windows) do obtain a
network address and have access to the internal
network but cannot go through to the internet.
These same computers have no problem when
assigned a static IP (192.168.xx.xx). It seems
strange, since I think once an address is
assigned, the masquerading process should occur
transparently. Here is the relevant data:
---------------
dhcpd.conf:
---------------
option domain-name "my.domain";
option domain-name-servers 221.74.107.1,
221.74.107.2;
subnet 192.168.0.0 netmask 255.255.255.0 {
range 192.168.0.1 192.168.0.10;
default-lease-time 86400;
max-lease-time 86400;
option routers 192.168.0.254;
}
# I don't know why I should have to include
# this subnet, since I don't intend to serve
# any requests from this side, but dhcpd
# says I have to include it:
subnet 10.21.48.0 netmask 255.255.255.0 {
deny unknown-clients;
deny bootp;
option routers 10.21.48.254;
}
-------------
A portion of the dhcpd.log:
-------------
Jan 27 12:45:37 marvin dhcpd: Listening on
LPF/eth1/00:40:f4:30:04:b6/192.168.0.0
Jan 27 12:45:37 marvin dhcpd: Sending on
LPF/eth1/00:40:f4:30:04:b6/192.168.0.0
Jan 27 12:45:37 marvin dhcpd: Listening on
LPF/eth0/00:04:76:38:e1:7f/10.21.48.0
Jan 27 12:45:37 marvin dhcpd: Sending on
LPF/eth0/00:04:76:38:e1:7f/10.21.48.0
Jan 27 12:45:37 marvin dhcpd: Sending on
Socket/fallback/fallback-net
Jan 27 12:45:37 marvin dhcpd: dhcpd startup succeeded
Jan 27 12:46:21 marvin dhcpd: DHCPREQUEST for
192.168.0.8 from 00:03:93:13:7f:d8 via eth0
Jan 27 12:46:21 marvin dhcpd: DHCPNAK on
192.168.0.8 to 00:03:93:13:7f:d8 via eth0
Jan 27 12:46:21 marvin dhcpd: DHCPREQUEST for
192.168.0.8 from 00:03:93:13:7f:d8 via eth1
Jan 27 12:46:21 marvin dhcpd: DHCPACK on
192.168.0.8 to 00:03:93:13:7f:d8 via eth1
Jan 27 12:46:21 marvin dhcpd: DHCPDISCOVER from
00:03:93:13:7f:d8 via eth0
Jan 27 12:46:21 marvin dhcpd: no free leases on
subnet 10.21.48.0
Jan 27 12:46:21 marvin dhcpd: DHCPDISCOVER from
00:03:93:13:7f:d8 via eth1
Jan 27 12:46:21 marvin dhcpd: DHCPOFFER on
192.168.0.8 to 00:03:93:13:7f:d8 via eth1
Jan 27 12:46:23 marvin dhcpd: DHCPREQUEST for
192.168.0.8 from 00:03:93:13:7f:d8 via eth0
-------------
Any suggestions will be greatly appreciated.
Thanks,
Gerardo Juarez
Searching for the best free email? Try MetaCrawler Mail, from the #1 metasearch service on the Web, http://www.metacrawler.com
-
: send the line "unsubscribe linux-admin" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
